By tricking a Horizon user into using a malicious template in the Orchestration/Stack section of Horizon, a remote attacker may trigger a cross-site-scripting (XSS) vulnerability during the stack creation. It may result in potential assets theft like user access credentials. Only setups exposing the orchestration dashboard in Horizon are affected. Acknowledgement: Red Hat would like to thank the OpenStack Project for reporting this issue. Upstream acknowledges Nikita Konovalov from Mirantis as the original reporter.
Created attachment 1035037 [details] cve-2015-3219-master-liberty.patch
Created attachment 1035038 [details] cve-2015-3219-stable-juno.patch
Created attachment 1035039 [details] cve-2015-3219-stable-kilo.patch
This is public now: https://security.openstack.org/ossa/OSSA-2015-010.html
Created python-django-horizon tracking bugs for this issue: Affects: fedora-all [bug 1230971]
Created python-django-horizon tracking bugs for this issue: Affects: openstack-rdo [bug 1230973]
Verified ======== python-django-horizon-2015.1.0-10.el7ost.noarch
This issue has been addressed in the following products: OpenStack 6 for RHEL 7 Via RHSA-2015:1679 https://rhn.redhat.com/errata/RHSA-2015-1679.html